/security/src/main/resources/org/jboss/as/security/LocalDescriptions.properties

security=The configuration of the security subsystem.
security.add=Adds the security subsystem.
security.remove=Removes the security subsystem.
security.deep-copy-subject-mode=Sets the copy mode of subjects done by the security managers to be deep copies that makes copies of the subject principals and credentials if they are cloneable. It should be set to true if subject include mutable content that can be corrupted when multiple threads have the same identity and cache flushes/logout clearing the subject in one thread results in subject references affecting other threads.
security-domain-children=The security domains.
security-domain=Configures a security domain. Authentication, authorization, ACL, mapping, auditing and identity trust are configured here.
security-domain.add=Add a security domain.
security-domain.remove=Remove a security domain.
security-domain.cache-type=Adds a cache to speed up authentication checks. Allowed values are 'default' to use simple map as the cache and 'infinispan' to use an Infinispan cache.
security-domain.module-options=Module options
authentication="Authentication configuration for this domain. Can either be classic or jaspi.
authentication.classic=Traditional authentication configuration.  Configures a list of login modules to be used.
authentication.classic.add=Adds a traditional authentication configuration
authentication.classic.remove=Removes a traditional authentication configuration
authentication.classic.login-modules=List of authentication modules
authentication.classic.login-modules.deprecated=This attribute was replaced with sub resource
authentication.classic.login-modules.code=Class name of the module to be instantiated.
authentication.classic.login-modules.flag=The flag controls how the module participates in the overall procedure. Allowed values are requisite, required, sufficient or optional.
authentication.classic.login-modules.module=Name of JBoss Module where the login module code is located.
authentication.classic.login-modules.module-options=List of module options containing a name/value pair.
authentication.jaspi=JASPI authentication configuration.
authentication.jaspi.auth-modules.deprecated=Use of this attribute is deprecated, use resource
authorization=Authorization configuration. Configures a list of authorization policy modules to be used.
authorization.add=Adds an authorization configuration
authorization.remove=Removes an authorization configuration
authorization.policy-modules=List of authorization modules
authorization.policy-modules.deprecated=Use of this attribute is deprecated, use resource
authorization.policy-modules.code=Class name of the module to be instantiated.
authorization.policy-modules.flag=The flag controls how the module participates in the overall procedure. Allowed values are requisite, required, sufficient or optional.
authorization.policy-modules.module=Name of JBoss Module where the policy module code is located.
authorization.policy-modules.module-options=List of module options containing a name/value pair.
mapping=Mapping configuration. Configures a list of mapping modules to be used for principal, role, attribute and credential mapping.
mapping.add=Adds a mapping configuration.
mapping.remove=Removes a mapping configuration.
mapping.mapping-modules=List of modules that map principal, role, and credential information
mapping.mapping-modules.deprecated=Use of this attribute is deprecated, use resource
mapping.mapping-modules.code=Class name of the module to be instantiated.
mapping.mapping-modules.type=Type of mapping this module performs. Allowed values are principal, role, attribute or credential..
mapping.mapping-modules.module-options=List of module options containing a name/value pair.
audit=Auditing configuration. Configures a list of provider modules to be used.
audit.add=Adds an audit configuration
audit.remove=Removes and audit configuration
audit.provider-modules=List of provider modules
audit.provider-modules.deprecated=This attribute is replaced with sub resource
audit.provider-modules.code=Class name of the module to be instantiated.
audit.provider-modules.flag=The flag controls how the module participates in the overall procedure. Allowed values are requisite, required, sufficient or optional.
audit.provider-modules.module=Name of JBoss Module where the audit provider module code is located.
audit.provider-modules.module-options=List of module options containing a name/value pair.
authentication-jaspi=JASPI authentication configuration. Either this or 'authentication' must be present but not both.
acl=Access control list configuration. Configures a list of ACL modules to be used.
acl.add=Adds an ACL configuration
acl.remove=Removes an ACL configuration
acl.acl-modules=List of acl modules
acl.acl-modules.deprecated=This attribute is replaced with sub resource
acl.acl-modules.code=Class name of the module to be instantiated.
acl.acl-modules.flag=The flag controls how the module participates in the overall procedure. Allowed values are requisite, required, sufficient or optional.
acl.acl-modules.module=Name of JBoss Module where the acl provider module code is located.
acl.acl-modules.module-options=List of module options containing a name/value pair.
type=Type of mapping this module performs. Allowed values are principal, role, attribute or credential.
identity-trust=Identity trust configuration. Configures a list of trust modules to be used.
identity-trust.add=Adds an identity trust configuration.
identity-trust.remove=Removes an identity trust configuration.
identity-trust.trust-modules=List of trust modules
identity-trust.trust-modules.deprecated=This attribute was replaced with sub resource
identity-trust.trust-modules.code=Class name of the module to be instantiated.
identity-trust.trust-modules.flag=The flag controls how the module participates in the overall procedure. Allowed values are requisite, required, sufficient or optional.
identity-trust.trust-modules.module=Name of JBoss Module where the identity trust module code is located.
identity-trust.trust-modules.module-options=List of module options containing a name/value pair.
login-module-stack=List of "named" login modules that are used by jaspi authentication modules.
login-module-stack.add=Adds a named login module stack configuration
login-module-stack.remove=Removes a named login module stack configuration
login-module-stack.login-modules.deprecated=This attribute is replaced with sub resource
login-module-stack.login-modules.add=Adds login module
login-module-stack.login-modules.remove=Removes login module
login-module-stack.login-modules=List of authentication modules
login-module-stack.login-modules.code=Class name of the module to be instantiated.
login-module-stack.login-modules.flag=The flag controls how the module participates in the overall procedure. Allowed values are requisite, required, sufficient or optional.
login-module-stack.login-modules.module=Name of JBoss Module where the login module is located.
login-module-stack.login-modules.module-options=List of module options containing a name/value pair.
authentication.jaspi.add=Adds a JASPI authentication configuration
authentication.jaspi.remove=Removes a JASPI authentication configuration
authentication.jaspi.auth-modules=List of authentication modules to be used.
authentication.jaspi.auth-modules.code=Class name of the module to be instantiated.
authentication.jaspi.auth-modules.flag=The flag controls how the module participates in the overall procedure. Allowed values are requisite, required, sufficient or optional.
authentication.jaspi.auth-modules.module=Name of JBoss Module where the auth module code is located.
authentication.jaspi.auth-modules.module-options=List of module options containing a name/value pair.
authentication.jaspi.auth-modules.login-module-stack-ref=Reference to a login module stack name previously configured in the same security domain.


jsse=JSSE configuration. Configures attributes for keystores that can be used for setting up SSL.
jsse.add=Adds a JSSE configuration
jsse.remove=Removes a JSSE configuration.
jsse.truststore=Configures a JSSE trust store
jsse.truststore.password=Sets the password of the truststore. Either this or 'keystore-password' must be present otherwise the security domain will be useless.
jsse.truststore.type=Type of the truststore. If not set, type defaults to 'JKS'.
jsse.truststore.url=URL of the truststore.
jsse.truststore.provider=Provider class name to use when creating the truststore.
jsse.truststore.provider-argument=String argument to pass to the truststore Provider constructor when instantiating it.
jsse.keystore=Configures a JSSE key store
jsse.keystore.password=Sets the password of the keystore. Either this or 'truststore-password' must be present otherwise the security domain will be useless.
jsse.keystore.type=Type of the keystore. If not set, type defaults to 'JKS'.
jsse.keystore.url=URL of the keystore.
jsse.keystore.provider=Provider class name to use when creating the KeyStore.
jsse.keystore.provider-argument=String argument to pass to the keystore Provider constructor when instantiating it.
jsse.key-manager=JSEE Key Manager factory
jsse.key-manager.provider=Provider class name to use when creating the KeyManagerFactory.
jsse.key-manager.algorithm=Algorithm to use when creating the KeyManagerFactory.
jsse.trust-manager=JSEE Trust Manager factory
jsse.trust-manager.provider=Provider class name to use when creating the TrustManagerFactory.
jsse.trust-manager.algorithm=Algorithm to use when creating the TrustManagerFactory.
jsse.client-alias=Preferred alias to use when the KeyManager chooses the client alias.
jsse.server-alias=Preferred alias to use when the KeyManager chooses the server alias.
jsse.client-auth=Boolean attribute to indicate if client's certificates should also be authenticated on the server side.
jsse.service-auth-token=Token to retrieve PrivateKeys from the KeyStore.
jsse.cipher-suites=Comma separated list of cipher suites to enable on SSLSockets.
jsse.protocols=Comma separated list of protocols to enable on SSLSockets.
jsse.additional-properties=Additional properties that may be necessary to configure JSSE.

list-cached-principals=Lists the principals stored in the authentication cache for this security domain.
list-cached-principals.list-cached-principals=Lists the principals stored in the authentication cache for this security domain.
list-cached-principals.reply=The usernames of the principals stored in the authentication cache for this security domain.
security-domain.flush-cache=Remove entries stored in the authentication cache for this security domain. A single entry can be flushed by using the principal argument with the username as the value. If no argument is passed to the operation, all entries are flushed.
security-domain.flush-cache.principal=Username of the principal to remove from the authentication cache.
vault=Security Vault for attributes.
vault.add=Adds a security vault configuration
vault.remove=Removes a security vault configuration
vault.code=Fully Qualified Name of the Security Vault Implementation.
vault.vault-options=Security Vault options.
policy-module=Policy module
auth-module=Auth module
login-module=Login module
mapping-module=List of modules that map principal, role, and credential information
mapping-module.add=Adds a mapping configuration.
mapping-module.remove=Removes a mapping configuration.
mapping-module.code=Class name of the module to be instantiated.
mapping-module.type=Type of mapping this module performs. Allowed values are principal, role, attribute or credential..
mapping-module.module=Name of JBoss Module where the mapping module code is located.
mapping-module.module-options=List of module options containing a name/value pair.
mapping-module.flag=The flag controls how the module participates in the overall procedure. Allowed values are requisite, required, sufficient or optional.
mapping-module.login-module-stack-ref=Reference to a login module stack name previously configured in the same security domain.
provider=Provider
trust-module=Trust module
provider-module=Provider module